-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2010-01-26 13:14:57 UTC
-
Revision ID:
james.westby@ubuntu.com-20100126131457-m6qv62qe43grcdxq
Tags: 1.06.27-1ubuntu7
* SECURITY UPDATE: fix DoS via malformed XML
- debian/patches/CVE-2009-3720.patch: update expat/xmltok/xmltok_impl.c
to not access beyond end of input string
- CVE-2009-3720
* SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
- debian/patches/CVE-2009-3560.patch: update expat/xmlparse/xmlparse.c to
properly recognize the end of a token
- CVE-2009-3560